Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5101

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-5101
Last Modified 15 Nov 2008 01:59:42
Published 26 Sep 2007 06:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5101

Summary

ChironFS before 1.0 RC7 sets user/group ownership to the mounter account instead of the creator account when files are created, which allows local users to gain privileges.

Vulnerable Systems

Application

  • Furquim Chironfs 1.0 Rc6


References

SECUNIA - 26943

OSVDB - 40586

CONFIRM - http://furquim.org/chironfs/Changelog.html

MISC - http://code.google.com/p/chironfs/issues/detail?id=6

XF - chironfs-file-insecure-permissions(36751)

BID - 25780


Last Updated: 27 May 2016 10:46:04